186 matches found
CVE-2021-21893
CVE-2021-21893 describes a use-after-free vulnerability in Foxit Software’s PDF Reader (and related Foxit PDF Editor/PhantomPDF suites) version 11.0.0.49893 where a crafted PDF can trigger reuse of freed memory, leading to arbitrary code execution. Exploitation requires user interaction (open mal...
CVE-2021-21831
The provided CVE-2021-21831 entry describes a use-after-free vulnerability in Foxit Software’s PDF tooling. Affected component: Foxit PDF Reader (and related Foxit PDF Editor/Reader variants) with JavaScript engine involvement, specifically around version 10.1.3.37598. Root cause: use-after-free ...
CVE-2021-21870
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.4.37651. A specially crafted PDF document can trigger the reuse of previously free memory, which can lead to arbitrary code execution. An attacker needs to trick the user into opening a...
CVE-2021-21870
CVE-2021-21870 is a use-after-free vulnerability in Foxit Software’s PDF Reader JavaScript engine (affected version 10.1.4.37651). A specially crafted PDF can trigger reuse of freed memory, enabling arbitrary code execution when a user opens a malicious file or site, particularly if the browser p...
Foxit PDF Reader Post-release Reuse Vulnerability (CNVD-2021-79771)
Foxit PDF Reader formerly known as Foxit Reader is a set of software used to read PDF format files, developed by Foxit Software Fujian. The vulnerability stems from not verifying the existence of the object before performing operations on it. An attacker could exploit this vulnerability to execut...
Foxit PDF Reader Post-release Reuse Vulnerability (CNVD-2021-79774)
Foxit PDF Reader formerly known as Foxit Reader is a set of software used to read PDF format files, developed by Foxit Software Fujian. The vulnerability stems from not verifying the existence of the object before performing operations on it. An attacker could exploit this vulnerability to execut...
Foxit PDF Reader Post-release Reuse Vulnerability (CNVD-2021-64096)
Foxit PDF Reader formerly known as Foxit Reader is a set of software used to read PDF format files, developed by Foxit Software Fujian. The vulnerability stems from not verifying the existence of the object before performing operations on it. An attacker could exploit this vulnerability to execut...
Foxit PDF Reader Post-release Reuse Vulnerability (CNVD-2021-64090)
Foxit PDF Reader formerly known as Foxit Reader is a set of software used to read PDF format files, developed by Foxit Software Fujian. The vulnerability stems from not verifying the existence of the object before performing operations on it. An attacker could exploit this vulnerability to execut...
EUVD-2021-8993
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.3.37598. A specially crafted PDF document can trigger the reuse of previously free memory, which can lead to arbitrary code execution. An attacker needs to trick the user into opening a...
Foxit Reader Reuse After Release Remote Code Execution Vulnerability
Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...
Foxit Reader Code Execution Vulnerability (CNVD-2021-38098)
Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...
CVE-2020-13547
A type confusion vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger an improper use of an object, resulting in memory corruption and arbitrary code execution. An attacker needs to trick the user to...
Type confusion
A type confusion vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger an improper use of an object, resulting in memory corruption and arbitrary code execution. An attacker needs to trick the user to...
CVE-2020-13547
A type confusion vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger an improper use of an object, resulting in memory corruption and arbitrary code execution. An attacker needs to trick the user to...
CVE-2020-13547
CVE-2020-13547 is a type-confusion vulnerability in Foxit PDF Reader 10.1.0.37527’s JavaScript engine. A crafted PDF can trigger memory corruption and arbitrary code execution; exploitation requires user action (opening the malicious file), or, if a browser plugin is enabled, visiting a malicious...
CVE-2020-13560
A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the...
CVE-2020-13557
A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the...
CVE-2020-13570
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger the reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicio...
Design/Logic Flaw
A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the...
Design/Logic Flaw
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger the reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicio...